The host is installed with Google Picasa before 3.9.0 Build 137.69 and is prone to integer overflow vulnerability. A flaw is present in the application, which fails to handle a crafted JPEG tag. Successful exploitation allows attackers to execute arbitrary code.